Cyber Newsroom Feed

The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.

  • BleepingComputer
Ivanti fixes maximum severity RCE bug in Endpoint Management software

Ivanti has fixed a maximum severity vulnerability in its Endpoint Management software (EPM) that can let unauthenticated attackers gain remote code execution on the core server. Ivanti EPM helps admin ... Read more

Published Date: Sep 10, 2024 (1 day, 3 hours ago)
  • BleepingComputer
Microsoft fixes Windows Smart App Control zero-day exploited since 2018

​Microsoft has fixed a Windows Smart App Control and SmartScreen flaw that has been exploited in attacks as a zero-day since at least 2018. On vulnerable systems, threat actors have abused the vulnera ... Read more

Published Date: Sep 10, 2024 (1 day, 4 hours ago)
  • BleepingComputer
Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws

Today is Microsoft's September 2024 Patch Tuesday, which includes security updates for 79 flaws, including four actively exploited and one publicly disclosed zero-days. This Patch Tuesday fixed seven ... Read more

Published Date: Sep 10, 2024 (1 day, 5 hours ago)
  • Zero Day Initiative
The September 2024 Security Update Review

We’ve reached September and the pumpkin spice floats in the air. While they aren’t pumpkin-spiced, Microsoft and Adobe have released their latest spicy security patches – including some zesty 0-days. ... Read more

Published Date: Sep 10, 2024 (1 day, 5 hours ago)
  • The Hacker News
CosmicBeetle Deploys Custom ScRansom Ransomware, Partnering with RansomHub

The threat actor known as CosmicBeetle has debuted a new custom ransomware strain called ScRansom in attacks targeting small- and medium-sized businesses (SMBs) in Europe, Asia, Africa, and South Amer ... Read more

Published Date: Sep 10, 2024 (1 day, 6 hours ago)
  • Cybersecurity News
Ivanti Issues Patch for Critical Vulnerabilities in Endpoint Manager, Including CVE-2024-29847 (CVSS 10.0)

Ivanti has released a series of critical updates for its widely used Ivanti Endpoint Manager (EPM), addressing several vulnerabilities that pose significant security risks to organizations. The most s ... Read more

Published Date: Sep 10, 2024 (1 day, 7 hours ago)
  • Help Net Security
CISA confirms that SonicWall vulnerability is getting exploited (CVE-2024-40766)

The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2024-40766 – a recently fixed improper access control vulnerability affecting SonicWall’s firewalls – to its Known Exploite ... Read more

Published Date: Sep 10, 2024 (1 day, 10 hours ago)
  • security.nl
Kritiek lek in SonicWall-firewalls gebruikt bij ransomware-aanvallen

Een kritieke kwetsbaarheid in de firewalls van SonicWall wordt gebruikt bij ransomware-aanvallen, zo stellen verschillende securitybedrijven. De kwetsbaarheid (CVE-2024-40766) is aanwezig in de manage ... Read more

Published Date: Sep 10, 2024 (1 day, 11 hours ago)
  • schneier.com
New Chrome Zero-Day

Blog Newsletter Books Essays News Talks Academic About Me HomeBlog New Chrome Zero-Day According to Microsoft researchers, North Korean hackers have been using a Chrome zero-day exploit to steal crypt ... Read more

Published Date: Sep 10, 2024 (1 day, 11 hours ago)
  • cert.pl
Vulnerabilities in MegaBIP software

CVE ID CVE-2024-6662 Publication date 10 September 2024 Vendor Jan Syski Product MegaBIP Vulnerable versions All before 5.15 Vulnerability type (CWE) Cross-Site Request Forgery (CSRF) (CWE-352) Report ... Read more

Published Date: Sep 10, 2024 (1 day, 11 hours ago)

Filters

Showing 10 of 966 Results